Oval Definition:oval:org.opensuse.security:def:81172
Revision Date:2016-12-29Version:1
Title:Security update for gstreamer-plugins-bad (Moderate)
Description:



This update for gstreamer-plugins-bad fixes the following security issues, which would allow attackers able to submit media files for indexing to cause code execution or crashes:

- Check an integer overflow (CVE-2016-9445) and initialize a buffer (CVE-2016-9446) in vmncdec. (bsc#1010829) - CVE-2016-9809: Ensure codec_data has the right size when reading number of SPS (bsc#1013659). - CVE-2016-9812: Add more section size checks (bsc#1013678). - CVE-2016-9813: fix PAT parsing (bsc#1013680).

Family:unixClass:patch
Status:Reference(s):1010829
1013659
1013678
1013680
CVE-2016-9445
CVE-2016-9446
CVE-2016-9809
CVE-2016-9812
CVE-2016-9813
SUSE-SU-2016:3296-1
Platform(s):SUSE Linux Enterprise Server 12 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.8.3-14.1 is installed
  • OR gstreamer-plugins-bad-lang-1.8.3-14.1 is installed
  • OR libgstadaptivedemux-1_0-0-1.8.3-14.1 is installed
  • OR libgstbadaudio-1_0-0-1.8.3-14.1 is installed
  • OR libgstbadbase-1_0-0-1.8.3-14.1 is installed
  • OR libgstbadvideo-1_0-0-1.8.3-14.1 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.8.3-14.1 is installed
  • OR libgstcodecparsers-1_0-0-1.8.3-14.1 is installed
  • OR libgstgl-1_0-0-1.8.3-14.1 is installed
  • OR libgstmpegts-1_0-0-1.8.3-14.1 is installed
  • OR libgstphotography-1_0-0-1.8.3-14.1 is installed
  • OR libgsturidownloader-1_0-0-1.8.3-14.1 is installed
    • BACK